RFR: 8270344: Session resumption errors [v4]
Sean Coffey
coffeys at openjdk.java.net
Thu Aug 19 13:07:59 UTC 2021
> Corner case where a session resumption can fail if the TLS server changes supported protocol versions in relation to a cached SSLSession. This is primarily an issue where the legacy TLS version is used in place of the newer "supported_versions" TLS extension.
Sean Coffey has updated the pull request incrementally with one additional commit since the last revision:
maxProtocolVersion refactoring
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/5110/files
- new: https://git.openjdk.java.net/jdk/pull/5110/files/86ae055f..c12551ad
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=5110&range=03
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=5110&range=02-03
Stats: 5 lines in 1 file changed: 0 ins; 3 del; 2 mod
Patch: https://git.openjdk.java.net/jdk/pull/5110.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/5110/head:pull/5110
PR: https://git.openjdk.java.net/jdk/pull/5110
More information about the security-dev
mailing list